I deploy Open Distro on Kubenertes environment.
Well, all is ok but,
with custom role for ldap users, this users can see and edit in security config. So they can modify role and It is not a good thing for me.
Cluster permission :
cluster_manage_pipelines cluster_composite_ops cluster_monitor
Index Permission :
read write indices_monitor manage_aliases search create_index
Tenant Permission (no multi tenant enable) :
Read and Write
How they can obtains rights for edit security config ?
Thanks for help.